About CommentOnThis.com

10. The Government constantly develops guidance to support Departments
and agencies and keep up with changes in technologies. Advice on the
management of information risks is available from the British Standards
Institute in the ISO 27000 family of standards for information security
management systems. These were developed in close co-operation with
experts in the Cabinet Office and CESG, the part of GCHQ that acts as the
National Technical Authority for Information Assurance, to address the full
range of information security policy and good practice. They are reflected in a
set of information security standards developed for Government, and
incorporated in the Government's Manual of Protective Security. This was
first issued in 1994, and has been regularly refreshed since then.